CVSS: 7.2EPSS: 0%CPEs: 668EXPL: 0CVE-2020-11308
https://notcve.org/view.php?id=CVE-2020-11308
17 Mar 2021 — Buffer overflow occurs when trying to convert ASCII string to Unicode string if the actual size is more than required in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Un desbordamiento del búfer ocurre cuando se intenta convertir una cadena ASCII en una cadena Unicode si el tamaño real es superior al requerido en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 10.0EPSS: 0%CPEs: 762EXPL: 0CVE-2020-11299
https://notcve.org/view.php?id=CVE-2020-11299
17 Mar 2021 — Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un desbordamiento del búfer puede ocurrir en el video mientras se reproduce el clip no estándar en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon V... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.0EPSS: 0%CPEs: 656EXPL: 0CVE-2020-11290
https://notcve.org/view.php?id=CVE-2020-11290
17 Mar 2021 — Use after free condition in msm ioctl events due to race between the ioctl register and deregister events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Un uso de la memoria previamente liberada en eventos ioctl de msm debido una carrera entre el registro ioctl y los eventos de cancelación del registro en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 262EXPL: 0CVE-2020-11228
https://notcve.org/view.php?id=CVE-2020-11228
17 Mar 2021 — Part of RPM region was not protected from xblSec itself due to improper policy and leads to unprivileged access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Parte de la región RPM no estaba protegida de xblSec en sí debido a una política inapropiada y conlleva a un acceso sin privilegios en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin •
CVSS: 6.4EPSS: 0%CPEs: 262EXPL: 0CVE-2020-11220
https://notcve.org/view.php?id=CVE-2020-11220
17 Mar 2021 — While processing storage SCM commands there is a time of check or time of use window where a pointer used could be invalid at a specific time while executing the storage SCM call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Mientras se procesan los comandos de almacenamiento SCM, se presenta una ventana de tiempo de comprobación o tiempo de uso en la que un puntero usado podría no ser válido en u... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 6.0EPSS: 0%CPEs: 634EXPL: 0CVE-2020-3664
https://notcve.org/view.php?id=CVE-2020-3664
22 Feb 2021 — Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un acceso de lectura fuera del límite en el hypervisor debido a un intento de acceso de lectura no válido al pasar direcciones no válidas en los productos Snapdragon Auto, Snapdragon Compute, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 526EXPL: 0CVE-2020-11297
https://notcve.org/view.php?id=CVE-2020-11297
22 Feb 2021 — Denial of service in WLAN module due to improper check of subtypes in logic where excessive frames are dropped in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Una denegación de servicio en el módulo WLAN debido a una comprobación inapropiada de subtipos en la lógica donde tramas excesivas son eliminadas en los productos Snapdragon Auto, Snapdragon Com... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin •
CVSS: 7.5EPSS: 0%CPEs: 1064EXPL: 0CVE-2020-11296
https://notcve.org/view.php?id=CVE-2020-11296
22 Feb 2021 — Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un desbordamiento aritmético puede ocurrir mientras se procesa NOA IE debido a un manejo inapropiado de errores en los productos Snapdragon Auto, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 698EXPL: 0CVE-2020-11281
https://notcve.org/view.php?id=CVE-2020-11281
22 Feb 2021 — Allowing RTT frames to be linked with non randomized MAC address by comparing the sequence numbers can lead to information disclosure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Permitir que las tramas RTT sean vinculadas con direcciones MAC no aleatorias mediante la comparación de números de secuen... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 826EXPL: 0CVE-2020-11280
https://notcve.org/view.php?id=CVE-2020-11280
22 Feb 2021 — Denial of service while processing fine timing measurement request (FTMR) frame with reserved bits set in the FTM parameter IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una denegación de servicio mientras se procesa la trama de petición de medición de sincronización f... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-617: Reachable Assertion •